Questions tagged [wevtutil]

I'm looking to export a large quantity of saved Security log files (.evtx) to text or CSV format. I found wevtutil but that only seems to be able to convert .evt to .evtx when dealing with saved log files: wevtutil epl c:\logs\seclog.evtx…

TL/DR: Logs working on system with source installed, but display info not getting archived with wevtutil al. When trying to read messages on system without sources installed I get the "description for Event ID from source cannot be found. Either…

I have a large number of 2k12 r2 servers and I'd like to keep archives of their Eventlogs every 30 days. I was looking for a centralized solution, possibly a GPO. But from what I saw it's only possible to use Group Policy in order to either archive…

Is it possible to install a provider without admin permissions? whenever I try something like wevtutil im MyManifest.man I got 'Access is denied.'. If I run the same command in an admin command prompt it works.